This paper investigates the advantages of enabling object classification in role-based access control (RBAC). First, it is shown how the merits of the RBAC models can be ascribed to its using of abstraction and state of dependencies. Following same arguments, it is shown how inclusion of object classification will ameliorate dependencies and abstractions in the model. The discussion contains examining seven criteria to compare object-classificationenabled RBAC with plain RBAC and trivial-permission-assignment models, in order to show the advantages of object classification in a more formal manner. The criteria are: number and complexity of decisions, change management cost, risk of errors, policy portability and reuse, enforcement and compliance, support for traditional information classification policies, and object grouping and management support. © Springer-Verlag Berlin Heidelberg 2007.
CITATION STYLE
Jafari, M., & Fathian, M. (2007). Management advantages of object classification in Role-based Access Control (RBAC). In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 4846 LNCS, pp. 95–110). Springer Verlag. https://doi.org/10.1007/978-3-540-76929-3_11
Mendeley helps you to discover research relevant for your work.